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METHOD FOR AUTHENTICATING A SPARE KEY FOR USING A VEHICLE 



BACKGROUND AND SUMMARY OF THE INVENTION 

This application claims the priority of German Application 
No. 199 01 211 .6, filed January 15, 1999, the disclosure of which 
5 is expressly incorporated by reference herein. 

The invention relates to a method for authenticating a spare 
vehicle key for use with a vehicle. 

gj A method of this type is known from European Patent document 

m EP 0 788 946 A. In this reference, with the aid of a separate 

I'b programming unit located outside the vehicle, data specific to 

''''■^ a part of the vehicle are retrieved from a central station, 

T: transmitted from the central station to the programming unit, and 

fli transferred from the latter to the vehicle. The data are then 

fi decoded in the vehicle. Although double coding is used some of 

15 the time, problems may arise with the known method if the 
separate programming unit is misused. 

Overall, it should be noted that the general trend to 
increase protection against theft and break- ins runs counter to 
the customer service requirement of being able to open and move 
2 0 a vehicle when the original key is not present, for example if 
the original key has been lost or inadvertently locked inside the 



vehicle. The problem becomes even more acute when burglar-proof 
glass is used. 

The goal of the invention is therefore to create a method 
of the type referred to above that is easy to perform and use, 
as well as being protected against misuse. 

The invention achieves this goal by providing a method for 
authenticating a spare key to be used in a vehicle in the absence 
of the regular key. The spare key is provided with an 
identification number that is transmitted to, and checked by, a 
central station. The spare key is authenticated by an 
authorization signal sent by the central station to the vehicle. 

The essential point of the invention is authentication of 
the spare key by the central station. Since the identification 
number of the spare key is transmitted to, and checked by, the 
central station, obvious misuse of a spare key that has been lost 
for example, as soon as this fact is communicated to the central 
station, is recognized and transmission of the authorization 
signal from the central station to the vehicle is prevented. 

Advantageous embodiments of the invention are explained in 
greater detail in the description of the method based on the 
figures . 



Advantageously, at least some of the data transmissions, 
such as from the spare key to the central station or from the 
central station to the vehicle are encoded. In particular, the 
data transmissions are encoded with a random number. In a 
particular preferred embodiment, bidirectional data traffic 
occurs wherein the data transmission takes place in one direction 
followed by transmission of a confirmation signal in an opposite 
direction. Further advantageously, the bidirectional data 
traffic in the one direction takes place based on a public key 
and the decoding at the central station takes place based on 
private key. 

In a particularly advantageous embodiment, the transmission 
of the spare key identification number to the central station is 
performed by the vehicle itself, to which the spare key 
identification number was previously transmitted. 

Also advantageously, data transmission can take place via 
telephony . 

In another advantageous embodiment, before the actual data 
transmission occurs, a receiver is activated by the spare key. 

Other objects, advantages and novel features of the present 
invention will become apparent from the following detailed 



description of the invention when considered in conjunction with 
the accompanying drawings . 

BRIEF DESCRIPTION OF THE DRAWINGS 

The single figure is a block diagram showing the operative 
5 switchpoints and transmission paths of the method according to 
the present invention. 

DETAILED DESCRIPTION OF THE DRAWINGS 

The method described here provides the possibility of 
1= opening and operating a vehicle 5 with the aid of a universally 

W applicable spare key without impairing the effectiveness of theft 
N= protection. When the spare key is authenticated by a central 
s station 6 using the car phone and a central database, a temporary 

N= authorization at least to open the vehicle using the spare key 
j^f is granted. 

15 The universally applicable spare key 10 is called a VK key 

below. Other operating points in the context of the method are 
the central database 12 (called VK database) , a car phone present 
in the vehicle 14, a base interface telephone 16 (called BIT 
interface) , and a cellular telephone of a customer service 

20 representative who brings the spare key into use 18. It is also 
important to use preferably asynchronous algorithms for telephone 
calls. This makes it unnecessary to ensure that telephone calls 
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are not being tapped. An "asynchronous algorithm" is understood 
to be an encoding method that in one direction operates with a 
public encoding algorithm (public key) and for decoding operates 
with a secret encoding algorithm (secret "private" key) . 

5 The evaluation of the signals arriving at the vehicle is 

preferably effected by the CAS (car access system) control unit 
22 that has a ring memory in which the successful VK key 
authentications are stored and any attempts at manipulation are 
p,, stored in an attack memory. 

110 The entire process of opening the vehicle with the spare key 

H takes place in five steps, I through V as described below and 
- indicated in the Figure. 

2 I) By pressing a command key on the VK key, the spare key 10 
generates a random number PIN which is decoded and, 

15 together with an individual recognition of the spare key 

VK__KEY_ID is transmitted to the vehicle with a non- secret 
(= public) code. The radio receiver 28 of the vehicle 
receives this radio-transmitted encoded signal 
Krypt_f 1 (VK_KEY_ID, PIN) and the random number PIN and sends 

20 it to the CAS 22, where the recognition of the spare key 

VK-KEY-ID is decoded based on recognition of the random 
number PIN. 
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II) The service technician transmits the following data, 
preferably using his cellular telephone 18, to the VK 
database 6 : 

random number PIN, and the telephone number and chassis 
5 number of the vehicle. With telephone transmission, coding 

is unnecessary. 

Using the chassis number, the VK database 6 finds the 
corresponding public key of the vehicle (P-CODE-FZG) and 
uses it to encode the random number PIN. 

III) The car phone 14 is dialed from the VK database and the 
j;= encoded random number PIN is transmitted, received by the 
.Li car phone, and forwarded to the CAS control unit 22. The 
= CAS has a secret decoding algorithm secret key (S-CODE- 
r'' Vehicle) which enables it to regenerate the random number 

PIN without actually knowing this PIN. The PIN is then 
compared with the PIN received in step I . 



IV) If the two PINs are identical, the CAS 22 generates its own 
random number RAND. RAND and the recognition VK_KEY-ID of 
the spare key transmitted thereto in step I are each 
2 0 encoded with a public key P-CODE-VK and transmitted to the 

VK database 6 via the car phone 14. At the VK database, 
using the secret key S-CODE-VK, the random number RAND and 
the VK key identifier VK-KEY-ID are regenerated and checked 
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to see whether the VK key identifier VK_KEY-ID is assigned 
to a valid spare key. Separate knowledge of the random 
number RAND is not necessary for this regeneration. 

V) If the VK key identifier is valid, the random number RAND 
in response is encoded with a public key P-CODE-Vehicle and 
transmitted to the CAS 22 in the vehicle 5. The vehicle is 
able to regenerate the random number RAND with its secret 
key S-CODE-Vehicle and compare it with the key in its 
memory. If the two are identical, this is interpreted as 
validation of the spare key VK_Key and the commands issued 
with the VK_Key are executed. 

It should be understood that the structure and operation of 
the various components used in the system to perform the method 
according to the present invention are well known by those of 
skill in the art. As such, they have not been described in 
detail here, but rather only the inventive method acts for 
authenticating the spare vehicle key to be used in the vehicle 
in the absence of the regular key. 

The foregoing disclosure has been set forth merely to 
illustrate the invention and is not intended to be limiting. 
Since modifications of the disclosed embodiments incorporating 
the spirit and substance of the invention may occur to persons 
skilled in the art, the invention should be construed to include 



everything within the scope of the appended claims and 
equivalents thereof. 
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WHAT IS CLAIMED IS; 



1. A method for authenticating a spare vehicle key to be 
used with a vehicle in the absence of a regular key, the method 
comprising the acts of: 

providing the spare vehicle key with an identification 

number; 

transmitting said identification number to a central 

station; 

checking the transmitted identification number by the 
central station; and 

authenticating the spare vehicle key and sending an 
authorization signal from the central station to the vehicle. 

2. The method according to Claim 1, wherein at lease one 
data transmission by and between the spare vehicle key, central 
station and vehicle is encoded. 

3. The method according to Claim 2, wherein said data 
transmission occurs in one direction followed by transmission of 
a confirmation signal in an opposite direction. 

4. The method according to Claim 3, wherein bidirectional 
data traffic in one direction takes place based on a public key 
and decoding at the central station takes place based on a 
private key. 
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5. The method according to Claim 1, wherein the act of 
transmitting the identification number of the spare vehicle key- 
to the central station is carried out by the vehicle, said 
identification number of the spare vehicle key having been 
previously transmitted to the vehicle. 

6. The method according to Claim 2, wherein the act of 
transmitting the identification number of the spare vehicle key 
to the central station is carried out by the vehicle, said 
identification number of the spare vehicle key having been 
previously transmitted to the vehicle. 

7. The method according to Claim 3, wherein the act of 
transmitting the identification number of the spare vehicle key 
to the central station is carried out by the vehicle, said 
identification number of the spare vehicle key having been 
previously transmitted to the vehicle. 

8. The method according to Claim 4, wherein the act of 
transmitting the identification number of the spare vehicle key 
to the central station is carried out by the vehicle, said 
identification number of the spare vehicle key having been 
previously transmitted to the vehicle. 

9. The method according to Claim 1, wherein the 
transmitting acts are performed using telephony. 
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10. The method according to Claim 2, 
transmitting acts are performed using telephony. 



wherein the 



11. The method according to Claim 3, wherein the 
transmitting acts are performed using telephony. 

12. The method according to Claim 4, wherein the 
transmitting acts are performed using telephony. 

13. The method according to Claim 5, wherein the 
transmitting acts are performed using telephony. 

14. The method according to Claim 1, wherein said 
transmissions are encoded with a random number. 

15. The method according to Claim 2, wherein said 
transmissions are encoded with a random number. 

16. The method according to Claim 1, wherein before an 
actual data transmission, a radio receiver in the vehicle is 
activated by the spare vehicle key. 
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ABSTRACT OF THE DISCLOSURE 



In a method for authenticating a spare key for use with a 
vehicle in the absence of the regular key, the spare key is 
provided with an identification number that is transmitted to, 
5 and checked by, a central station. The spare key is authenticated 
by an authorization signal sent from the central station to the 
vehicle . 
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